RBVPN with BGP is up and running for a couple of my locations now on their primary DIA.
Each site has a cellular backup device operating in NAT mode with two carriers - a primary and secondary - and I have a second VPN (tunnel interface) connection from remote office to home office using the primary carrier on the cellular device.
I would like to have that second VPN tunnel up regardless of the carrier active at the moment which is why I'm using NAT on the device. The issue I have is that the home office VPN tunnel only honors one IP address (currently configured for the primary). If the cellular device moves to the secondary carrier, the public IP changes and the VPN does not establish.
If I add an additional VPN with tunnel interface for the secondary carrier on the home office XG I can define the remote site secondary carrier public IP address, however, I cannot re-use the same tunnel interface IP for routing between sites.
Are there any other ways, or something I missing, to allow my cellular NAT device to connect to the VPN regardless of the currently active carrier?
Worth noting: I have two additional gateways defined on the remote office XG - one for each xfrm interface - and I use an SD-WAN policy to send all remote office LAN traffic through the additional gateways so that my home office XG330 can do inspection and filtering.
This thread was automatically locked due to age.
